4 matches found
CVE-2025-52814 WordPress BRW plugin <= 1.8.8 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme BRW ova-brw allows PHP Local File Inclusion.This issue affects BRW: from n/a through = 1.8.7...
CVE-2025-49314 WordPress BRW plugin <= 1.8.6 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ovatheme BRW ova-brw allows Stored XSS.This issue affects BRW: from n/a through = 1.8.6...
CVE-2025-49313 WordPress BRW plugin <= 1.8.6 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme BRW ova-brw allows PHP Local File Inclusion.This issue affects BRW: from n/a through = 1.8.6...
WordPress BRW plugin <= 1.8.6 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin BRW versions = 1.8.6...